AzPolicyAdvertizer

last sync: 2025-May-26 17:12:08 UTC

Audit Resource Locks on Resource Groups based on Tags

Community Policy definition

Source Repository Community-Policy GitHub
JSON Community-Policy GitHub
Deploy policy d55c656b-4caf-419d-adc1-aa5a2f99fb60 (1.0.0) to Azure
Display name Audit Resource Locks on Resource Groups based on Tags
Id d55c656b-4caf-419d-adc1-aa5a2f99fb60
Version 1.0.0
Details on versioning
Category General
Microsoft Learn
Description Audits all Resource Groups that have a specific Tag, for the CanNotDelete Resource Lock.
Mode All
Type Custom Community
Effect Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled
RBAC role(s) none
Rule aliases THEN-ExistenceCondition (1)
Alias Namespace ResourceType Path PathIsDefault DefaultPath Modifiable
Microsoft.Authorization/locks/level Microsoft.Authorization locks properties.level True False
Rule resource types IF (1)
Microsoft.Resources/subscriptions/resourceGroups
JSON
EPAC
Deploy policy d55c656b-4caf-419d-adc1-aa5a2f99fb60 (1.0.0) to Azure